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Claim Rejections - 35 USC §102 

1 . The following is a quotation of the appropriate paragraphs of 35 U.S. C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public use or on 
sale in this country, more than one year prior to the date of application for patent in the United States. 

2. Claims 1-4 rejected under 35 U.S.C. 102(b) as being anticipated by Wootton et al. (US 
Patent 6,128,298). 

Regarding claim 1 Wootton et al. discloses a system for supporting a website comprising: 

an IP device located on a public network, having a public IP address and known port 
number( see figure 1, public network with node( devices) section 20 with IP address, see col. 4, 
lines 64-67, public devices have IP address , see also col. 5, lines 37-50, IP address and port 
number of public devices) ; 

a second device located outside the public network( see figure 1 , section private network , 
nodes section 18 nodes( devices) outside of the public network, see col. 4, lines 60-64); 

wherein a connection exists between the second device and the IP device, which 
connection is initiated by the second device( see col. 5, lines 16-20, connection or access is 
obtained from the private nodes to the public network). 

Regarding Claim 2 Wootton et al. discloses everything as applied above (see claim 1). 
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wherein the first device cannot initiate a connection with the second device because the 
second device is not configured to accept communications initiated by other devices( see col. 5, 
lines 16-20, the private devices are only accessible through the IP filter). 

Regarding Claim 3 Wootton et al. discloses everything as applied above (see claim 1). 

wherein the second device is located on a private IP network with a private IP 
address( see col. 4, lines 60-64, the private devices have private IP addresses). 

Regarding Claim 4 Wootton et al. discloses everything as applied above (see claim 3). 

wherein the communication protocol between the first device and the second device is 
TCP/IP or application level protocol based on TCP/IP( see col. 5, lines 30-36, the 
communication between the networks, are TCP/IP). 

Claim Rejections - 35 USC § 103 

3. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

4. Claims 5-11 rejected under 35 U.S.C. 103(a) as being unpatentable over Wootton et al in 
view of Andersson et al. (US Patent 6, 931,016). 

Regarding Claim 5 Wootton et al. discloses everything as applied above (see claim 1). 

Wootton et al. fails to specifically point out wherein the communication between the first 
device and the second device is encrypted as claimed. 



Application/Control Number: 10/645,855 Page 4 

Art Unit: 2416 

However Andersson et al. teaches wherein the communication between the first device 
and the second device is encrypted (see col. 4, lines 17-30, the VPN connection uses secured 
encryption data). 

Therefore it would have been obvious to one with ordinary skill in the art at the time the 
invention was made to combine Wootton et al.'s invention with Andersson et al. invention 
because Andersson et al. invention provides a method of managing a virtual private network 
having a set of network devices maintains a network device memory set for storing a set of 
network device identifiers that identifies each of the set of network devices (see Andersson et al., 
col. 1, lines 44-48). 

Regarding Claim 6 Wootton et al. discloses everything as applied above (see claim 1). 

Wootton et al. fails to specifically point out wherein the second device comprises a 
memory storing information for publication or private source data as claimed. 

However Andersson et al. teaches wherein the second device comprises a memory 
storing information for publication or private source data (see col. 1 lines 45-49, the virtual 
private network, have memory sets for storing network device identifiers ( private source data)). 

Therefore it would have been obvious to one with ordinary skill in the art at the time the 
invention was made to combine Wootton et al.'s invention with Andersson et al. invention 
because Andersson et al. invention provides a method of managing a virtual private network 
having a set of network devices maintains a network device memory set for storing a set of 
network device identifiers that identifies each of the set of network devices (see Andersson et al, 
col. 1, lines 44-48). 
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Regarding Claim 7 Wootton et al. discloses everything as applied above (see claim 1). 

Wootton et al. fails to specifically point out further comprising a third device connected 
to the second device through a private network, the third device comprising a memory storing 
information for publication or private source data as claimed. 

Andersson et al. teaches further comprising a third device connected to the second 
device through a private network, the third device comprising a memory storing information for 
publication or private source data(see col. 1 lines 45-49, the virtual private network, have 
memory sets( which reads on third or more than one) for storing network device identifiers ( 
private source data)). 

Therefore it would have been obvious to one with ordinary skill in the art at the time the 
invention was made to combine Wootton et al.'s invention with Andersson et al. invention 
because Andersson et al. invention provides a method of managing a virtual private network 
having a set of network devices maintains a network device memory set for storing a set of 
network device identifiers that identifies each of the set of network devices (see Andersson et al, 
col. 1, lines 44-48). 

Regarding claim 8 Wootton et al. discloses a system for supporting a website comprising 
an IP device located on a public network, having a public IP address and known port number 
(see figure 1, public network with node (devices) section 20 with IP address, see col. 4, lines 64- 
67, public devices have IP address, see also col. 5, lines 37-50, IP address and port number of 
public devices); 
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a second device located on a private network having a responder function with a private 
IP address and port number( see col. 5, lines 16-20, connection or access is obtained from the 
private nodes to the public network, IP filter reads on responder function); 

wherein a single connection exists between the second device and the first device, which 
connection is initiated by the second device and wherein the first device cannot initiate a 
connection with the second device by virtue of the second devices private and dynamic IP 
address( see col. 5, lines 16-20, the private devices are only accessible through the IP filter). 

Wootton et al fails to specifically point a third device having a memory, storing 
information for publication or private source data, located on the private network in 
communication with second device as claimed. 

However Andersson et al. teaches a third device having a memory, storing information 
for publication or private source data, located on the private network in communication with 
second device(see col. 1 lines 45-49, the virtual private network, have memory sets( which reads 
on third or more than one) for storing network device identifiers ( private source data)). 

Therefore it would have been obvious to one with ordinary skill in the art at the time the 
invention was made to combine Wootton et al.'s invention with Andersson et al. invention 
because Andersson et al. invention provides a method of managing a virtual private network 
having a set of network devices maintains a network device memory set for storing a set of 
network device identifiers that identifies each of the set of network devices (see Andersson et al, 
col. 1, lines 44-48). 
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5. Claims 9, 10 and 11 rejected under 35 U.S.C. 103(a) as being unpatentable over 
Wootton et al. in view of Foulkes et al. (WO 02/30082 A2). 

Regarding Claim 9 Wootton et al. discloses a method for increasing security for sensitive 
information or source data contained in a memory which is used to respond to inquiries directed 
to a website by safeguarding a responder function, comprising: 

providing on a public network an IP device having a public IP address and known port 
number, (see Wootton et al., figure 1, public network with node (devices) section 20 with IP 
address, see col. 4, lines 64-67, public devices have IP address, see also col. 5, lines 37-50, IP 
address and port number of public devices); 

Foulkes et al. teaches the IP device having an application that corresponds to a listening 
function of a website (see page 9, lines 12-22, security server). 

providing an application corresponding to a responder function of a website wherein the 
responder application is isolated from the IP device( see Foulkes et al., page 11, lines 4-12, 
figure 4, shows a IP device with a responder function, responding to request); 

the responder application registering with the listening application and subscribing to 
receive incoming requests by initiating a communication channel to the listening application as a 
communication client (see Foulkes et al., page 9, lines 12-22, the client IP application generates 
IP request through the web browser, which includes a flag to identify the security server 
(listening function) of request, connection is established); 

the listening application receiving a request from a remote application and sending 
incoming requests only to the registered responder application (see page 11, lines 3-6, the 
security server receives a validation request form the secure server , the validation request 
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contain profile information , which is used to determine whether the user is valid or not, which 
allows receiving request only to registered( valid) responder application); 

processing the incoming requests by the responder application( see Foulkes et al, page 9, 
lines 12-22, the web browser generates the IP request passed to the IP Application ( responder 
application); and 

returning results to the remote application via listening application( see Foulkes et al, 
page 9, lines 12-22, the security server responds with an IP request for the profile, which is 
received by the IP application). 

Therefore it would have been obvious to one with ordinary skill in the art at the time the 
invention was made to combine Wootton et al.'s invention with Foulkes et al. invention because 
Foulkes et al. invention provides a system for controlling access by clients to servers over an 
Internet protocol network to which authorized persons can gain access (see Foulkes et al. page 1, 
lines 3-5). 

Regarding Claim 10 Wootton et al. discloses a method for increasing security for 
sensitive information or source data contained in a memory which is used to respond to inquiries 
directed to a website by allowing them to be placed in a private network along with a responder 
function comprising: 

providing on a public network an IP device having a public IP address and known port 
number, (see Wootton et al, figure 1, public network with node (devices) section 20 with IP 
address, see col. 4, lines 64-67, public devices have IP address, see also col. 5, lines 37-50, IP 
address and port number of public devices); 
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providing on a private network a second IP device having a private IP address, (see 
Wootton et al, col. 5, lines 16-20, connection or access is obtained from the private nodes to the 
public network); 

Foulkes et al. teaches the IP device having an application that corresponds to a listening 
function of a website (see page 9, lines 12-22, security server); 

the second IP device having an application corresponding to a responder function of a 
website( see Foulkes et al, page 11, lines 4-12, figure 4, shows a IP device with a responder 
function, responding to request); 

the responder application initiating an outgoing TCP connection to the listening 
application as a communication client and registering to receive incoming requests(see Foulkes 
et al, page 9, lines 12-22, the client IP application generates IP request through the web browser, 
which includes a flag to identify the security server (listening function) of request, connection is 
established); 

the listening application receiving a request from a remote application and sending 
incoming requests to the responder application (see page 11, lines 3-6, the security server 
receives a validation request from the secure server, the validation request contain profile 
information, which is used to determine whether the user is valid or not, which allows receiving 
request only to registered (valid) responder application); 

processing the incoming requests by the responder application by optionally accessing 
the source data( see page 11, lines 22-28, the IP session is open and the data carried by the IP 
packet is read and authenticated, target server is able to carry out further levels of authentication 
( using HTTP, CGI script) reads on optionally accessing the source data); 
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returning results to the remote application via the listening application( see Foulkes et al, 
page 9, lines 12-22, the security server responds with an IP request for the profile, which is 
received by the IP application). 

Therefore it would have been obvious to one with ordinary skill in the art at the time the 
invention was made to combine Wootton et al.'s invention with Foulkes et al. invention because 
Foulkes et al. invention provides a system for controlling access by clients to servers over an 
Internet protocol network to which authorized persons can gain access (see Foulkes et al. page 1, 
lines 3-5). 

Regarding claim 11 Wootton et al. discloses a method for increasing security for 
sensitive information which is used to respond to inquiries directed to a website, comprising: 

providing on a private network an IP device having a dynamic IP address and port 
number(see Wootton et al, col. 5, lines 16-20, connection or access is obtained from the private 
nodes to the public network), 

providing on a public network a second IP device having a public IP address and known 
port number(see Wootton et al. , figure 1, public network with node (devices) section 20 with IP 
address, see col. 4, lines 64-67, public devices have IP address, see also col. 5, lines 37-50, IP 
address and port number of public devices), 

causing the responder application in the first device to establish a connection with the 
listening application in the second device, the communication including the IP address for the 
first device and a port number for the responder application (see Wootton et al, col. 5, lines 16- 
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20, connection or access is obtained from the private nodes to the public network, IP filter reads 
on responder application function); 

receiving communications at the second IP device from other IP devices located on the 
public network or from devices located on private networks in communication with the public 
network (see Wootton et al. , col. 5, lines 1-4, communication is established via the IP filter 
between the private and public network); 

Foulkes et al. teaches the IP device having an application corresponding to the responder 
function of a website( see Foulkes et al., page 1 1, lines 4-12, figure 4, shows a IP device with a 
responder function, responding to request); 

the second IP device having an application that corresponds to the listening function of a 
website( see Foulkes et al, page 8, lines 14-16, the second device ( secure server, waits to 
receive profile, which reads on listening function); 

transmitting requests for application relating to the inquiries from the listening 
application to the responding application over the connection established by the responding the 
application(see Foulkes et al, page 9, lines 12-22, the client IP application generates IP request 
through the web browser, which includes a flag to identify the security server( listening function) 
of request, connection is established) ; 

processing the request for information by the responder application( see Foulkes et al, 
page 9, lines 12-22, the web browser generates the IP request passed to the IP Application ( 
responder application) 
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providing a response from the responder application to the listening application over the 
connection established by the responder application( see Foulkes et al;, page 9, lines 12-22, the 
IP application responds with an acknowledgement that carries a profile to the security server 
over the established connection); and 

transmitting from the listening application to the other IP device information relating to 
the request( see Foulkes et al, page 9, lines 12-22, the security server responds with an IP request 
for the profile, which is received by the IP application). 

Therefore it would have been obvious to one with ordinary skill in the art at the time the 
invention was made to combine Wootton et al.'s invention with Foulkes et al. invention because 
Foulkes et al. invention provides a system for controlling access by clients to servers over an 
Internet protocol network to which authorized persons can gain access (see Foulkes et al. page 1, 
lines 3-5). 

Response to Arguments 

6. Applicant's arguments with respect to claims 1-11 have been considered but are moot in 
view of the new ground(s) of rejection. 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to MON CHERI S. DAVENPORT whose telephone number is 
(571)270-1803. The examiner can normally be reached on Monday - Friday 8:00 a.m. - 5:00 
p.m. EST. 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Seema Rao can be reached on 571-272-3 174. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 



/Mon Cheri S Davenport/ 
Examiner, Art Unit 2416 
October 28, 2008 

/Ian N. Moore/ 

Primary Examiner, Art Unit 2416 



